Merge branch 'release/v0.12.0'

Author: Navaneeth-pk

.github/workflows/ci.yml

@@ -0,0 +1,156 @@
+name: CI
+# Controls when the workflow will run
+on:
+  # Triggers the workflow on push or pull request events but only for the develop branch
+  push:
+    branches: [develop, main]
+  pull_request:
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}-${{ (github.ref == 'refs/heads/develop' ||  github.ref == 'refs/heads/main') && github.run_number || github.ref }}
+  cancel-in-progress: true
+
+env:
+  FORCE_COLOR: true
+  NODE_OPTIONS: "--max-old-space-size=4096"
+  LOCKBOX_MASTER_KEY: lockbox-master-key
+  SECRET_KEY_BASE: secrret-key-base
+  NODE_ENV: test
+  PG_HOST: postgres
+  PG_PORT: 5432
+  PG_USER: postgres
+  PG_PASS: postgres
+  PG_DB: tooljet_test
+
+# A workflow run is made up of one or more jobs that can run sequentially or in parallel
+jobs:
+  build:
+    runs-on: ubuntu-latest
+
+    steps:
+      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
+      - uses: actions/checkout@v2
+
+      - name: Use Node.js 14.17.3
+        uses: actions/setup-node@v2
+        with:
+          node-version: 14.17.3
+
+      - name: Cache node modules
+        uses: actions/cache@v2
+        env:
+          cache-name: cache-node-modules
+        with:
+          # npm cache files are stored in `~/.npm` on Linux/macOS
+          path: ~/.npm
+          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-build-${{ env.cache-name }}-
+            ${{ runner.os }}-build-
+            ${{ runner.os }}-
+
+      - run: npm i -g [email protected]
+      - run: npm run build
+
+  lint:
+    runs-on: ubuntu-latest
+
+    steps:
+      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
+      - uses: actions/checkout@v2
+
+      - name: Use Node.js 14.17.3
+        uses: actions/setup-node@v2
+        with:
+          node-version: 14.17.3
+
+      - name: Cache node modules
+        uses: actions/cache@v2
+        env:
+          cache-name: cache-node-modules
+        with:
+          # npm cache files are stored in `~/.npm` on Linux/macOS
+          path: ~/.npm
+          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-build-${{ env.cache-name }}-
+            ${{ runner.os }}-build-
+            ${{ runner.os }}-
+
+      - run: npm i -g [email protected]
+      - run: npm --prefix frontend ci && npm --prefix server ci
+      - run: npm --prefix server run lint && npm --prefix frontend run lint
+
+  unit-test:
+    runs-on: ubuntu-latest
+    needs: build
+    container: node:14.17.3-buster
+    services:
+      postgres:
+        image: postgres
+        env:
+          POSTGRES_PASSWORD: postgres
+        # Set health checks to wait until postgres has started
+        options: >-
+          --health-cmd pg_isready
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+    steps:
+      - uses: actions/checkout@v2
+      - name: Cache node modules
+        uses: actions/cache@v2
+        env:
+          cache-name: cache-node-modules
+        with:
+          # npm cache files are stored in `~/.npm` on Linux/macOS
+          path: ~/.npm
+          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-build-${{ env.cache-name }}-
+            ${{ runner.os }}-build-
+            ${{ runner.os }}-
+      - run: apt update && apt install -y postgresql
+      - run: npm i -g [email protected]
+      - run: npm --prefix server ci
+      - run: npm --prefix server run db:create
+      - run: npm --prefix server run db:migrate
+      - run: npm --prefix server run test
+
+  e2e-test:
+    runs-on: ubuntu-latest
+    needs: build
+    container: node:14.17.3-buster
+    services:
+      postgres:
+        image: postgres
+        env:
+          POSTGRES_PASSWORD: postgres
+        # Set health checks to wait until postgres has started
+        options: >-
+          --health-cmd pg_isready
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+    steps:
+      - uses: actions/checkout@v2
+      - name: Cache node modules
+        uses: actions/cache@v2
+        env:
+          cache-name: cache-node-modules
+        with:
+          # npm cache files are stored in `~/.npm` on Linux/macOS
+          path: ~/.npm
+          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-build-${{ env.cache-name }}-
+            ${{ runner.os }}-build-
+            ${{ runner.os }}-
+      - run: apt update && apt install -y postgresql
+      - run: npm i -g [email protected]
+      - run: npm --prefix server ci
+      - run: npm --prefix server run db:create
+      - run: npm --prefix server run db:migrate
+      - run: npm --prefix server run test:e2e -- --silent

.version

@@ -1 +1 @@
-0.11.1
+0.12.0

README.md

@@ -56,6 +56,7 @@ You can deploy ToolJet on Heroku for free using the one-click-deployment button
 
 [GitHub contributor leaderboard using ToolJet](https://blog.tooljet.io/building-a-github-contributor-leaderboard-using-tooljet/)<br>
 [Cryptocurrency dashboard using ToolJet](https://blog.tooljet.com/how-to-build-a-cryptocurrency-dashboard-in-10-minutes/)<br>
+[WhatsApp CRM using ToolJet](https://blog.tooljet.com/build-a-whatsapp-crm-using-tooljet-within-10-mins/)<br>
 
 ## Documentation
 Documentation is available at https://docs.tooljet.com.

app.json

@@ -40,6 +40,10 @@
     "SSO_DISABLE_SIGNUP": {
       "description": "Disable sign-up via SSO",
       "value": ""
+    },
+    "DISABLE_PASSWORD_LOGIN": {
+      "description": "Disable logging in with username and password. (Do not turn this on unless you've configured SSO and additional admins)",
+      "value": "false"
     }
   },
   "formation": {
@@ -63,4 +67,4 @@
       }
     }
   }
-}
+}

docs/docs/Enterprise/_category_.json

@@ -0,0 +1,5 @@
+{
+    "label": "Enterprise",
+    "position": 8,
+    "collapsed": true
+}

docs/docs/Enterprise/audit_logs.md

@@ -0,0 +1,69 @@
+# Audit logs
+
+The audit log is the report of all the activities done in your ToolJet account. It will capture and display events automatically by recording who performed an activity, what when, and where the activity was performed, along with other information such as IP address.
+
+<img class="screenshot-full" src="/img/Enterprise/audit_logs/audit_logs.gif" alt="ToolJet - Enterprise - Audit logs" height="420"/>
+
+### Filter audit logs
+
+Audited events can be filtered using the below characteristics:
+
+#### Select Users
+
+Select a specific user from this dropdown to check all their activities. 
+
+#### Select Apps
+
+The dropdown will list all the apps present in your account. Choose an app to filter the logs associated with that app.
+
+#### Select Resources
+
+| Resources  | description |
+| ----------- | ----------- |
+| User | Filter all the User events like `USER_LOGIN`, `USER_SIGNUP`, `USER_INVITE`, AND `USER_INVITE_REDEEM`. |
+| App | Filter all the App events like `APP_CREATE`, `APP_UPDATE`,`APP_VIEW`,`APP_DELETE`,`APP_IMPORT`,`APP_EXPORT`,`APP_CLONE`. |
+| Data Query | Filters the events associated with Data Query like `DATA_QUERY_RUN`. |
+| Group Permission | All the events associated with Group Permissions will be filtered. Group Permissions include `GROUP_CREATE`, `GROUP_UPDATE`, `GROUP_DELETE`. |
+| App Group Permission | Within each group, you can set apps for read or edit privileges. These events gets recorded as App Group Permissions. |
+
+#### Select Actions
+
+| Actions  | description |
+| ----------- | ----------- |
+| USER_LOGIN | This event is recorded everytime a user logins. |
+| USER_SIGNUP | This event is recorded everytime a new signup is made. |
+| USER_INVITE | You can invite users to your account from `Manage Users` section and an event is audited everytime an invite is sent. |
+| USER_INVITE_REDEEM | This event is recorded whenever an invite is redeemed. |
+| APP_CREATE | This event is recorded when a user creates a new app. |
+| APP_UPDATE | This event is recorded whenever actions like renaming the app, making the app public, editing shareable link, or deploying the app are made. |
+| APP_VIEW | This event is logged when someone views the launched app. (public apps isn't accounted for) |
+| APP_DELETE | This event is recorded whenever a user deletes an app from the dashboard. |
+| APP_IMPORT | This event is recorded whenever a user imports an app. |
+| APP_EXPORT | This event is recorded whenever an app is exported. |
+| APP_CLONE | This event is recorded whenever a clone of the existing app is created. |
+| DATA_QUERY_RUN | This event is logged whenever a data source is added, a query is created, or a whenever a query is run either from the query editor or from the launched app. |
+| GROUP_PERMISSION_CREATE | This event is recorded whenever a group is created. |
+| GROUP_PERMISSION_UPDATE | This event is recorded whenever an app or user is added to or removed from a group, or the permissions for a group are updated. |
+| GROUP_PERMISSION_DELETE | This event is recorded whenever a user group is deleted from an account. |
+| APP_GROUP_PERMISSION_UPDATE | For every app added in a user group, you can set privileges like `View` or `Edit` and whenever these privileges are updated this event is recorded. By default, the permission of an app for a user group is set to `View`. |
+
+:::info
+It is mandatory to set a Data Range in `From` and `To` to filter audit logs.
+:::
+
+### Understanding information from logs
+
+<img class="screenshot-full" src="/img/Enterprise/audit_logs/reading_logs.png" alt="ToolJet - Enterprise - Reading logs" />
+
+| Property  | description |
+| ----------- | ----------- |
+| action_type | It is the type of action that was logged in this event. Refer [this](#select-actions) to know about actions. |
+| created_at | Displays the date and time of a logged event.  |
+| id | Every event logged has a specific event id associated with it. |
+| ip_address | Displays the IP address from where the event was logged. |
+| metadata | Metadata includes two sub-properties - `tooljet_version` and `user_agent`. `tooljet_version` displays the version of ToolJet used for the logged event and `user_agent` contains information about the device and browser used for that event. |
+| organization_id | Every organization in ToolJet has an id associated with it and is recorded when an event occurs. |
+| resource_id | There are several [resources](#select-resources) and each resource that is created, an id get associated with it.|
+| resource_name | Displays the name of the [resources](#select-resources) that was logged in the event. For example, if an app was created or deleted then it will display the name of the app. |
+| resource_type | isplays the type of the [resources](#select-resources) that was logged in the event. |
+| user_id | Every user account in ToolJet has an id associated with it and is recorded when an event occurs. |

docs/docs/actions/_category_.json

@@ -1,5 +1,5 @@
 {
   "label": "Actions Reference",
-  "position": 6,
+  "position": 7,
   "collapsed": true
 }

docs/docs/contributing-guide/_category_.json

@@ -1,5 +1,5 @@
 {
   "label": "Contributing Guide",
-  "position": 6,
+  "position": 9,
   "collapsed": true
-}
+}

docs/docs/data-sources/airtable.md

@@ -7,7 +7,7 @@ sidebar_position: 1
 
 ToolJet can connect to your Airtable account to read and write data. Airtable API key is required to create an Airtable datasource on ToolJet. You can generate API key by visiting [Airtable account page](https://airtable.com/account). 
 
-<img class="screenshot-full" src="/img/datasource-reference/airtable/airtable-intro.gif" alt="ToolJet - ToolJet - Datasource Airtable" height="420" />
+<img class="screenshot-full" src="/img/datasource-reference/airtable/airtable-intro.gif" alt="ToolJet - Datasource Airtable" height="420" />
 
 :::info
 Airtable API has a rate limit, and at the time of writing this documentation, the limit is five(5) requests per second per base. You can read more about rate limits here [Airtable API]( https://airtable.com/api ).

docs/docs/data-sources/sendgrid.md

@@ -0,0 +1,58 @@
+---
+sidebar_position: 11
+---
+
+# SendGrid
+
+ToolJet can connect to your SendGrid account to send emails.
+
+<img class="screenshot-full" src="/img/datasource-reference/sendgrid/sendgrid-datasource.png" alt="ToolJet - Datasource SendGrid" height="420" />
+
+:::info
+The SendGrid API Datasource supports for interaction with the mail endpoint of the [SendGrid v3 API](https://docs.sendgrid.com/api-reference/how-to-use-the-sendgrid-v3-api/authentication).
+:::
+
+## Connection
+To add a new SendGrid API datasource, click the Datasource manager icon on the left-sidebar of the app builder and click on the `Add datasource` button, then select SendGrid API from the modal that pops up.
+ 
+Enter your **SendGrid API key** in the "API key" field.
+
+:::tip
+SendGrid API key is required to create an SendGrid datasource on ToolJet. You can generate API key by visiting [SendGrid account page](https://app.sendgrid.com/settings/api_keys). 
+:::
+
+Click on the 'Save' button to save the datasource.
+
+## Supported operations
+1.  Email service
+
+
+### Email service
+Required parameters: 
+- Send email to
+- Send email from 
+- Subject
+- Body as text
+
+
+Optional parameters:
+- Body as HTML
+
+<img class="screenshot-full" src="/img/datasource-reference/sendgrid/sendgrid-query.jpg" alt="ToolJet - Query SendGrid" height="420"/>
+
+:::info
+**Send mail to** - accepts a array/list of emails separated by comma.
+For example:
+`{{["[email protected]", "[email protected]"]}}`.
+:::
+
+:::tip
+**Send a single email to multiple recipients** - The `Send mail to` field can contain an array of recipients, which will send a single email with all of the recipients in the field. 
+
+**Send multiple individual emails to multiple recipients** - set <b>Multiple recipients</b> field to `{{true}}` and the `Send mail to` field will be split into multiple emails and send to each recipient.
+:::
+
+
+:::note
+NOTE: Query should be saved before running.
+:::

docs/docs/data-sources/typesense.md

@@ -0,0 +1,28 @@
+# TypeSense
+ToolJet can connect to your TypeSense deployment to read and write data.
+
+## Supported operations
+
+:::tip
+Documentation for each of these operations are available at https://typesense.org/docs/
+:::
+
+1. Create collection
+2. Index document
+3. Search documents
+4. Get document
+5. Update document
+6. Delete document
+
+:::tip
+Make sure that you supply JSON strings instead of JavaScript objects for any document or schema that is being passed to the server, in any of the above operations.
+:::
+
+## Connection 
+Please make sure the host/IP of the TypeSense deployment is accessible from your VPC if you have self-hosted ToolJet. If you are using ToolJet cloud, please whitelist our IP.
+
+ToolJet requires the following to connect to your TypeSense deployment: 
+- Host
+- Port
+- API Key
+- Protocol

docs/docs/deployment/env-vars.md

@@ -48,6 +48,14 @@ If you want to restrict the signups and allow new users only by invitations, set
 You will still be able to see the signup page but won't be able to successfully submit the form.
 :::
 
+#### Disable login and signup using username and password
+
+:::info
+Use this feature only if you have configured other methods of authentication, such as SSO.
+:::
+
+If you want to restrict users from logging in using regular username and password, set the environment variable `DISABLE_PASSWORD_LOGIN` to `true`.
+
 #### Serve client as a server end-point ( optional )
 
 By default, the `SERVE_CLIENT` variable will be set to `false` and the server won't serve the client at its `/` end-point.